CVE-2005-2982: XSS
First published: Mon Sep 19 2005(Updated: )
Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP Compaq HTTP Server | =2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-2982?
CVE-2005-2982 is considered a high severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2005-2982?
To fix CVE-2005-2982, it is recommended to upgrade CompaqHTTPServer to a secure version that is not affected by this XSS vulnerability.
What type of attack can CVE-2005-2982 facilitate?
CVE-2005-2982 can facilitate cross-site scripting attacks, allowing remote attackers to execute arbitrary scripts in the context of the victim's browser.
Which software is affected by CVE-2005-2982?
CVE-2005-2982 specifically affects CompaqHTTPServer version 2.1.
What symptoms might indicate exploitation of CVE-2005-2982?
Signs of exploitation of CVE-2005-2982 may include unexpected pop-ups, redirects, or abnormal behavior in web applications when accessing error pages.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/compaq
- canonical/hp compaq http server
- version/hp compaq http server/2.1